Services Australia to tap law enforcement data for staff security
Services Australia is planning to deploy a new intelligence and investigation system that will allow it to cross reference customer data with information held by…
Month: January 2026
South Korean giant Kyowon confirms data theft in ransomware attack
The Kyowon Group (Kyowon), a South Korean conglomerate, disclosed that a cyberattack has disrupted its operations and customer information may have been exposed in the…
Multiple Elastic Vulnerabilities Could Lead to File Theft and DoS
Elastic has released urgent security patches addressing four significant vulnerabilities in Kibana that could enable attackers to steal sensitive files, trigger service outages, and exhaust…
European telcos may get unlimited radio spectrum rights
Europe’s telecoms providers may be given the use of lucrative radio spectrum without a time limit under the European Commission’s proposed revamp of telecoms rules…
Kimwolf botnet’s swift rise to 2M infected devices agitates security researchers
The Kimwolf botnet, which splintered off from the record-setting Aisuru DDoS botnet in August, gained the widespread attention of security researchers when it temporarily claimed…
Stealthy CastleLoader Malware Attacking US-Based Government Entities
A sophisticated malware loader known as CastleLoader has emerged as a critical threat to US government agencies and critical infrastructure organizations. First identified in early…
Spring CLI Vulnerability Allows Attackers to Execute Commands on User Systems
A command-injection vulnerability in the Spring CLI VSCode extension allows attackers to execute arbitrary commands on affected user machines. The vulnerability, tracked as CVE-2026-22718, affects all versions of the extension through…
Microsoft Crushes Cybercrime Subscription Service RedVDS
A pharmaceutical company lost cancer treatment funding, a Florida condo association lost half a million dollars, and thousands more fell victim—all thanks to a $24-per-month…
AI Security Is Top Cyber Concern: World Economic Forum
AI is expected to be “the most significant driver of change in cybersecurity” this year, according to the World Economic Forum’s annual cybersecurity outlook. That…
CrowdStrike defeats shareholder lawsuit over huge software outage
A US federal judge dismissed a lawsuit by CrowdStrike shareholders who said the cyber security company defrauded them by concealing its inadequate software testing and…
CERT-UA reports PLUGGYAPE cyberattacks on defense forces
CERT-UA reports PLUGGYAPE cyberattacks on defense forces Pierluigi Paganini January 14, 2026 CERT-UA reported PLUGGYAPE malware attacks on Ukraine’s defense forces, linked with medium confidence…
Sources: DHS finalizing replacement for disbanded critical infrastructure security council
The Department of Homeland Security is finalizing plans for a new body that would replace the functions of the Critical Infrastructure Partnership Advisory Council (CIPAC)…